Improve auth mechanisms for MQTT broker subscription

fablabbcn / smartcitizen-api

The Smart Citizen Engine

https://developer.smartcitizen.me

GNU Affero General Public License v3.0

10 stars 4 forks source link

Improve auth mechanisms for MQTT broker subscription #322

Closed oscgonfer closed 2 weeks ago

oscgonfer commented 1 month ago

Currently, our MQTT publishing/subscription auth logic is:

allow all to publish
deny all to subscribe EXCEPT certain users/IPs

We can improve the user auth part to be more secure by building upon the work done in https://github.com/fablabbcn/smartcitizen-api/pull/318, by also having checks for the type of user in the platform and by passing the auth bearer.

oscgonfer commented 2 weeks ago

Solved in #318 PR

timcowlishaw commented 2 weeks ago

Implemented in https://github.com/fablabbcn/smartcitizen-api/pull/318